I have a work desktop plugged into the work network. As I opened my firewall settings I noticed that it is turned off. My question is how should I configure it? I saw that the interface isn't assigned to any zone... I should assign to internal zone and open some port that I need in order to work? There are some guidelines for configuring the firewall?
I get connected to the internet via a router. The router dials to my provider and is connected to my computers via LAN and WLAN (mostly WLAN, see below). A few days ago I installed Suse11.2 to an old laptop (connected both ways: ethernet with wire and wireless ethernet).
The access to the online repositories worked only after I added the LAN-Adapter (Eth0) to the Demilitarised Zone of the firewall (I did also with the WLAN Adapter).
1. Is this normal?
2. Should I add the network devices now to an other zone?
I want to update my main laptop now from openSuse11.1 to 11.2 via new installation (from DVD) and make this installation right.
Or should I install only the data on the DVD and update after the installation via Yast? (My main laptop has also an loose contact at the ethernet adapter.)
Now I am using (on my main laptop = Samsung X20) openSuse 11.1 and Gnome 2.24.1 (mostly, 1 account is using KDE) and Kernel Linux 220.127.116.11-01.1-pae. "/home" is on an separated partition (as part of an extended partition). I have also 2 NTFS partitions for Windows XP (System and Data), and a FAT, a root (/) and a swarp partition. My router is a AVM fritzbox 7270 (firewall should be included).
We have a 10.0.0.x network with a working DNS Server (BIND) setup. Recently we purchased Watchguard firewall and configured three networks, so that our internal network can be divided into three networks and talk to each other through firewall routing. So I configured three ips 192.168.0.1,172.16.0.1 and 10.0.0.1 for local network card in the firewall router. I separated three networks and individually configured machines with static ip and given gateway as the above ips. Now, I need to configure DNS server for each zone in the same server which is in the network 10.0.0.x, is this possible?. If yes do I need to setup ip aliases for eth0 in the DNS server with different ips from each network?
I suspect this is an initial configuration bug. All firewall logs seem to be going to all three files. That causes a lot of clutter in the log files, and makes it difficult to see whether there are any serious problems being logged.
I have a DNS server with 3 zonesone is dynamic with an associated reverse and one is static Everything was fine until I added a single host in the staticzone then the server stopped resolving names in that zoneThe only way I could get it to work again was delete the whole zone and re enter the zone and hosts
Last night while setting up wired & wireless connection in openSuse 11.2 Gnome version via YAST's ifup, I got wireless but lost wired connection (interface eth0). Dmesg shows that eth0 became eth1. I cannot get eth0 back. Is there any way to remedy this situation, eg. get info from the Ubuntu partition in my triple-boot laptop, without having to re-install openSUSE?
I'm new to this forum site and I was wondering how can I bridge a network between the eth0 and wlan0 connections?my eth0 NIC is a RealTek RTL8111B 10/100/1000 Ethernet Card (OnBoard) and my wlan0 NIC is a RealTek RTL8187B 802.11b/g WiFi USB Adapter Card.Are there any utilities, such as bridge-utils that I can use, except for Firestarter since Firestarter states that the eth0 connection is not established, or do I right-click on the network icon and select Edit Connections and go to Auto eth0 and under the IPv4 Address setting and select Shared to other computers and run a live connection there?The main reason is that I need an Internet connection for my Xbox 360, which is connected to my Linksys WRT54G 802.11b/g Wireless Router, that has DD-WRT firmware installed and 4 WiFi hotspots for any wireless device, such as my PSP, DS, DS Lite, Wii, Laptop(s), my brother's PC (needs a WiFi card), and my dad's PC (needs either a WiFi card or an Internet connection from my brother's computer to my dad's PC)
Here are my Computer Specs: ECS nForce6m-a Motherboard 2GB DDR-800 PC6400 Memory
I want some advice for making my system more secure. I want deactivate any network connection that is unnecessary. Only my browser and the update ability of zypper should have access to the internet. On windows there are personal firewalls.
How can I block internetaccess for all other programmes on openSUSE?
I am trying to add a custom allow rule in the firewall for a range of IPs from 18.104.22.168 - 22.214.171.124, what exactly am I supposed to enter in the source box? I believe I have to add two separate rules for 102 and 103, and I put /24 at the end of both, is this correct to get the whole range of IPs?
1. Under openSUSE 11.2, I allowed printer sharing through CUPS by setting the Firewall to Allow Services of CUPS in the External Zone section. I don't see the CUPS option in the Allow Services of the Firewall under 11.4, any zone. Is my system missing something?2. If I turn off the Firewall, the client computer can see the printers, even get the broadcasted names. If I put port 631 in TCP of the Advanced setting of the External Zone, the client computer can see the printer too, but I know I read somewhere that putting 631 in the External Zone is basically allowing printer requests from the entire internet.
I tried to update my fully-working 64-bit 11.1 system to 11.2. I used the network install and chose the Update option. It took a few hours so I didn't sit through the entire installation but when I returned the 11.2 login screen was displayed. Having logged in, however, I found that I couldn't access the network.The boot log showed that network had failed to start. "ifconfig" lists only the "lo" interface. "ifstatus eth0" returns "Interface eth0 is not available"
Network Settings in YaST lists 2 entries in the Overview tab. The first entry has Name:"NetXtreme BCM5755 Gigabit Ethernet PCI Express" and IP Address: "Not configured".The detail pane for this entry shows "NetXtreme BCM5755 Gigabit Ethernet PCI Express (Not connected) BusID:0000:3f00.0 Unable to configure the network card because the kernel device (eth0, wlan0) is not present. This is mostly caused by missing firmware (for wlan devices). See dmesg output for details". The Edit and Delete buttons are both disabled for this entry.
The second entry has exactly the same name as the first with the IP Address listed as "DHCP4". I assume this was the entry that was carried over from the 11.1 system. The detail pane for this entry shows "NetXtreme BCM5755 Gigabit Ethernet PCI Express (No hwinfo) Device Name: eth0. Started automatically at boot. IP address assigned using DHCP4". The Edit and Delete buttons are both enabled for this entry.lspci reports "3f:00.0 Ethernet controller: Broadcom Corporation NetXtreme BCM5755 Gigabit Ethernet PCI Express (rev 02)"
lsmod lists only "edd", "loop", "sr_mod", "sg", "cdrom" and "dm_mod". The files in /etc/sysconfig/network/ are "if-down.d/", "if-up.d/", "providers/", "scripts/", "config", "dhcp", "ifcfg-eth0", "ifcfg-lo", "ifcfg.template", "ifroute-lo",
Last weekend I upgraded my Opensuse 11.1 machine (pretty clean) to 11.3. After the upgrade, the NVidia graphics no longer worked, but more importantly, eth0 was not bound to my Intel 82566DC gigabit ethernet controller. I fooled around in yast network devices long enough to know that everything there is configured correctly. The Yast message at the bottom of the Network Settings screen says:
"Unable to configure the network card because the kernel device (eth0, wlan0) is not present. This is mostly caused by missing firmware (for wlan devices). See dmesg output for details."dmesg output shows nothing related to networking. The boot screen shows:
Setting up (localfs) network interfaces: lo ... Waiting for mandatory devices: eth0 __NCS__ 29 28 27 ... 1 0 ... failed eth0 no interface found ... failed
Any ideas here? I've googled till my fingers were tired and all I've found are references from folks with real hardware issues. This machine worked fine for me under 11.1. Now I can't get 11.3 to bind the nic.
I want to set my desktop IP address to always be 192.168.1.2. The NetworkManager connects to the network automatically and the IP address is assigned randomly. I can set up another connection in NetworkManager and always change over. But is there any way to make the default eth0 interface to be permanently set to a certain address (using NetworkManager, not ifup)?
I'm using 11.3 gnome and cannot fix the eth0 connection. Tried to make it work with connection manager, ifup but both of them did'n make eth0 work. Here are some logs that you might wanna see:
lsmod: Module Size Used by nls_utf8 1165 1 st - Pastebin.com ifconfig: eth0 Link encap:Ethernet HWaddr 1C:6F:65:47:03:16 UP BROADCAS - Pastebin.com ifdown eth0:
I have TP-LINK router that sends wireless signal through the house which I'm using on my laptop's Ubuntu to connect on the internet, also I can connect with Ubuntu from laptop via the same cable that I'm trying to use on my desktop, so the router and cable are working. Also on my dekstop I've installed Windows 7 and can't connect from there either. The computer is new so i doubt that there is something wrong with its hardware. It all started when my connection disappeared. My ISP advised me to reset my router by plugging out the power cable and plugging it back in after 5min, and so I did. After that I could connect only from laptop. Tried to reinstall suse, to install ubuntu, but nothing worked. When I installed suse on my friend's computer, the only thing that I had to do is to open YaST and change the Network setup method from ifup to the NetworkManager, and also insert the MAC adress in the connection's properties. Tried that on my computer, but also didn't work.
I am trying to run Firestarter firewall but keep getting the message ETH0 is not ready. This problem has been highlighted by others but is there a simple way of sorting this out, answers in other forums are wide and varied. but it's not clear if they have been successful.
switched recently to 11.2 and it works fine for me as workstation I want to set up a router separating a part of the network and also acting as a firewall/proxy... Configured 2 Ethernet Interfaces, checked Ip forwarding in Yast but it does not forward the packets from the "internal" to the "external" network. Hovewer after I set up my router as default for machines on internal network I can ping the external interface but no adress on external network (particularly the one of the default router) !!! From the router I can reach both networks and the net via default gateway on external. Tried to:
a) switch firewall completely off b) iptables -P FORWARD ACCEPT c) masquarading internal adresses to the external network
my interfaces configuration looks like: eth0 Link encap:Ethernet HWaddr 00:13:D4:E3:A2:7B inet addr:192.168.1.34 Bcast:192.168.1.255 Mask:255.255.255.0 inet6 addr: fe80::213:d4ff:fee3:a27b/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
We have reason to ask this of you following some strange firewall behaviour - But don't panic If you use openSUSE 11.2 and you think: Your Firewall should be running You are not sure but think it should be check and report back here.
I'm trying to get OpenMPI (a parallel programming library) working on my home system. I have just two machines on it now, t61 and quad, connected through a router. (Which is also connected to cable modem for internet.) I can ssh between the machnes, mount directories with NFS, etc. However, I just can't get the OpenMPI to run. The OpenMPI message board suggested that the most probable cause is that the firewall is blocking TCP. I don't know how to tell if that's the problem, and can't find any manual for the SuSE firewall, while the various Wikis &c that pop up in a search don't provide any information that addresses my problem.
SuSE 10.0 X86 32 acting as my internet gateway and firewall.
eth0 is my internal interface network 192.168.0.0/24 IP 192.168.0.254 dsl0 is my internet connection and is a single ip PtP connection to my ISP.
My internal network is masquaraded onto the external network.
I run an smtp server on my gateway box that I need to be accessable to both the internal and external networks.
However I want to prevent machines on the internal network from establishing connections to external smtp servers, but still alow them to connect to the smtp server on the gateway to send email.
NOTE I do not want to force attempts to connect to [URL] 25 to be re-directed to my internal server I just want to drop or reject the connection.
The firewall up until now has just been configured through YaST, but am not afraid to edit script files if needed
The reason for doing this it to prevent spambots from being able to send through my isp, I keep my own machines clean but sometimes get asked to disinfect machines for other people (family members etc), where I need to connect to the outside world to get updates/virus defs etc, but don't want them spamming from my network.
can I deny the access to my server for a specific OS? I have one PC which I want to give it acces from winxp, but if it's boot into ubuntu I want to deny all access to my server, same IP, same ethernet card
I've setup vnc over ssh tunnelling however the Suse firewall seems to be blocking it. On the local host I have this in ~/.ssh/config:LocalForward localhost:5900 remotehost.com:5900 The problem is that this only works when I either disable the firewall or add an exception for VNC. Both of these actions defeat the whole purpose of ssh tunnelling since they leave my VNC port open to the outside world (very insecure).
I'm in the situation where I'm trying to create 2 private networks using ESX server, all behind a NAT router (static ips are used). I used an openSuse11 vm as a router and was able to configure it so that a machine on one private network was able to access the public network. The problem I have now it that I need to be able to access a machine on the private network from the public network using a different set of IP's.
So if a machine in the private network has an IP of 10.1.0.222 I should be able to ping it using 10.99.0.222 or some other IP. I have never done this before and after reading up on iptables and linux routing I feel more confused than before. Is it possible to add IPs to eth0 (public) and have them mapped to machines on a private network eth1 or eth
I'm looking forward to the release of openSUSE 11.4, which I'm looking to install as an Internet facing gateway on a mini-ITX machine with 2 Ethernet cards. As such I've been reading up on the YaST Firewall trying to find out to configure it, and there's one thing I'd like to be able to do: 'stealth' all the firewall ports.
In other words, if someone were to hypothetically do a port scan of my external IP address, I would rather they not know whether any of the ports on my gateway are open or closed, so instead of replying with the status of those ports the packets get dropped. I've been able to do this with a product called Astaro Security Gateway, which I currently have installed on a second hand Dell Optiplex machine, but I am now looking into the possibility of installing this as a virtual machine inside an openSUSE 11.4 host (extra level of security) and would like the same functionality for the host OS.
I have done a new install of 11.4 and as with previous versions, I have to go to YAST2 and disable the firewall before I have internet and local network access. Finally I must find out how to do this correctly.
How to I change the default firewall to allow me internet and local network access without disabling it completely? Also I am unclear about the function of Novel Network Armor? What does this do?